All posts by Paul Stradling

News

Tech News : Huge Lockdown Profits For Amazon

Changing consumer habits due to lockdown are believed to have been a big factor in Amazon’s Q1 profits being a massive three times larger than last year.

Huge Profit Growth in Just One Year

In the first 3 months of 2020, before the first lockdowns for the pandemic, Amazon recorded a $2.5bn profit. Fast forward to the first 3 months of 2021, many long lockdowns later, and in the 3 months to 31 March 2021, Amazon has now recorded a $8.1bn profit.  That is a staggering three times higher than only 12 months ago!  This means that Q1 of 2021 is second only for sales ($108.5 billion) in the company’s history to Q4 of 2020 ($125.6 billion). 

Why?

The main reasons are clear:

– Amazon’s leading e-commerce business with its massive distribution and delivery network proved to be the ideal way of shopping when consumers were confined to their homes under lockdown restrictions, high street shops were forced to close, and even supermarkets were restricted to essential items.

– With the leisure industry effectively shut down (pubs, clubs, cinemas, entertainment venues), Amazon was well-positioned to expand its streaming entertainment platforms (Prime) as consumers switched their leisure spending to home-entertainment.

– The closing of offices and other workplaces and the shift to remote working and the accelerated digital transformation of businesses-favoured cloud-based work and communications. This meant with Amazon owning the leading on-demand (public) cloud computing platforms and API provider (AWS), it was well placed to take advantage of a big increase in enterprise cloud migrations.  In fact, the revenue growth rate of AWS was a massive 32 per cent which generated an eye-watering $13.5bn in revenue.

Other Reasons

Analysts have noted that other reasons why Amazon has improved its performance this year compared to competitors like Walmart, Target, and eBay are that it focused on essentials at the start of the pandemic and has since increased staffing and fulfilment-centre square footage to ensure that it can cover more orders.

Growth

Amazon’s financial officer Brian Olsavsky has highlighted how Amazon’s business essentially grew by 50 percent in Q1 of 2021, and that the company’s annual revenue growth rate internationally prior to Covid, and post-Covid, had been tripling anyway.

What Does This Mean For Your Business?

As Amazon’s founder and CEO Jeff Bezos pointed out in the company’s earnings release, AWS offers a broad set of (cloud) tools and services to businesses, and many businesses have undergone a digital transformation and a migration to the cloud (many to AWS services) during the pandemic. Amazon’s e-commerce platform has also been beneficial to businesses using it to sell online during the pandemic, and Amazon’s ad business has also recorded huge growth. In the entertainment’s market, Prime video (which Amazon sees more as an adoption and retention driver for its Prime membership) has also seen huge growth during the pandemic, making it a serious challenger to the other streaming service competitors (e.g. Netflix, HBO Max, Disney Plus, Hulu, and more). In short, Amazon’s broad set of services, dominance in key sectors, capacity, and distribution have suited the market conditions created by the pandemic and this has been reflected in the huge Q1 profits. Just as it is competiton to many businesses (e-commerce), it is also a key supplier (e.g. public cloud), and this latest profit announcement confirms that Amazon’s power in many markets, globally, is still increasing.

News

Featured Article : Image Optimisation

In this article we look at image optimisation, the different types of compression and image files, and how files different file formats can be compared and best used.

Vectors or Bitmaps?

Raw, digital image files start as either vectors or bitmaps/rasters/pixel maps. Bitmaps are made from pixels whereas vectors are made using mathematical formulas, co-ordinates and geometry.

Vector image files are often used for creating logos, illustrations, and print layouts in programs such as CAD packages, Microsoft AutoShapes, Blender, Adobe, and more.  Vectors can be re-opened and re-edited in graphics programs as they can be scaled without losing resolution. Examples of vector file formats include EPS (encapsulated postscript), PDF and SVG (scalable vector graphics).

BMP

Bitmap images are made from a grid pattern of coloured squares known as picture elements/pixels. Examples of bitmap file formats include BMP (Bitmap), JPG (jpeg), PNG, GIF, TFF (pronounced tiff) and EXIF (exchangeable image file format).

Using image files on the web, however, requires optimisation.

Image File Optimisation

Image files for use on the Web need to be ‘optimised’.  This generally means creating a balance between retaining visual quality while shrinking the size of the file. Smaller image files (i.e. smaller in size and in compressed formats) take up less storage space and are quicker to download when part of a website.  Compressing image files, therefore, means changing attributes such as the dimensions, the resolution (dpi), the bit depth (the number of bits used to represent each pixel in an image), and setting the file type e.g. .jpg, .png, or .gif.

Types of Compression

There are two types of compression for image files. These are:

1. Lossy compression. This reduces the file size by permanently reducing data. This means that, once a file has undergone lossy compression, increasing the dimensions of the file shows a pixelated/blurred version because data/pixels were stretched and made into larger blocks to make the whole image smaller and compressed. Examples of lossy compression file formats (bitmaps) include JPG, and GIF (depending on settings).

2. Lossless compression.  This type of compression squeezes the file without removing data so that the picture quality remains the same, and the file can be decompressed to its original quality. Examples of lossless compression file formats include RAW, BMP, PNG and GIF (depending on settings) .

Comparison

Different optimsed/compressed file types have different qualities and uses.  For example:

– JPG and GIF files are both used on the Web. JPG files (often used in digital camera images) have lossy compression but a relatively high quality for the size of the image and as such, are used for photos and more detailed images on websites. GIF files have lossless compression (depending on settings) but a maximum 8-bit colour depth (limited to a palette of 256 colours).  This means that they are not best suited to photos, but rather for saving images like charts, diagrams, simple images, and simple animations.  GIF files can also be used where transparency of part of the graphic is needed.

– A PNG file is an example of lossless compression that provides a high-quality image. PNGs provide a much better-quality alternative to GIFs but, like JPG files, PNGs can be used for all photos and images that require cleaner, clearer detail.  PNGs, however, have a lower compression rate than JPGs, so can be bigger (in terms of KB size). PNGs can, therefore, provide a noticeably better-quality image than a JPG and the layers of graphics in the image can be kept separate from each other, but this comes with a trade-off being the larger size of the file.

– Bitmap image files (.bmp) are uncompressed or compressed with a lossless compression. This image file type has raster graphics data (pixels rather than vector) that is independent of display devices, meaning that a BMP file can be viewed without a graphics adapter. Each pixel is made of one single or a group of ‘bits’ (hence the file name), and this allows encoding of the file to different colour depths (i.e. bits-per-pixel/bpp up to 32 bit).  Like other raster file formats, BMP also supports transparency. BMP files are not suitable for use on the Web (although they can nevertheless be used) but are good for storing highly detailed, complex images (e.g. for archiving or image processing/photo editing). BMP was developed for Windows OS and BMP files are compatible with major image editing applications, e.g. Photoshop or CorelDRAW. BMP is a Windows proprietary filetype so TFF (.tff) can be used instead.  TFF files, for example, are often used for commercial and professional printing.

What Does This Mean For Your Business?

A basic understanding of file formats can help businesses to make decisions about how best to present images (e.g. on websites to provide the best visual impact), and minimise download time as this can impact on SEO and ranking factors. Also, a good general understanding of file types can help when dealing with printers and web developers, and can help with decisions about the storage and archiving of company images, and how to save images so that that they can be editable. Images play an incredibly important role, e.g. in social media posts, websites, company brochures/literature, branding and more, so understanding how to save, edit, present, send and deal with them is worthwhile for all businesses.

News

Tech Insight : What Is An MSP?

In this article, we take a brief look at what an MSP is, what services they provide, and what benefits businesses get from using an MSP.

MSPs

A Managed Service Provider (MSP) is a company that delivers outsourced IT services and support to businesses and organisations.  The MSP remotely and proactively, manages, monitors, updates, reports on (and has responsibility for) the customer’s IT infrastructure and/or end-user systems for a subscription fee. Typically, these managed services are network, application, infrastructure, and security, and are delivered by providing support and administration on customers’ premises, in their MSP’s data centre/hosting, or in a third-party’s data centre. MSPs may also provide hardware, software, mobile device management, training, and many other IT and communications-related services to their customers.

Evolution

Many traditional IT Support companies evolved into what are now known as MSPs when application service providers (ASPs) helped make it possible for remote support for IT infrastructure.

In the late 90s/early 2000s, ASPs delivered apps (sometimes their own) and related services over the internet or via a private network for subscription, thereby giving rise to the remote provision of services. Some ASPs became MSPs, although ASPs are now generally referred to a software as a service (SaaS) providers.

Services

MSPs can now provide a broad range of services including networking, application and infrastructure services, cybersecurity, email and help desk, data storage and backup (and restore), cloud integration, software migration (e.g., to 365), patching, communications and more.

Benefits of Using and MSP

Typically, the benefits that companies and organisations get from using an MSP include:

– Savings from not having in-house IT staff/departments, saving on maintaining/replacing software and hardware, and from better advice and deals offered by MSPs (hardware, software, networks, communications).

– Fast resolution of IT problems due to on-demand availability of IT expertise.

– Becoming more up-to-date, efficient, and competitive, and future-proofing as MSPs reduce technology adoption barriers and help manage the changes and processes needed to enable a company to quickly, adopt new technologies, and take advantage of new opportunities and ways of working.

– Less disruption and increased service levels due to proactive, ongoing expert monitoring, maintenance, upkeep and upgrading of infrastructure, networks, hardware, and other services due to expert MSP help and advice.

– Better security and reduced risk due to patching, updating of anti-virus, threat monitoring and IT security education and advice, and upgrading of network security by the MSP.

– Peace of mind from knowing that effective, secure, and regular backup and restore procedures, and services are in place, and disaster recovery plans exist and are up to date.

– Easier management of IT for the business due to centralisation.

– Flexibility, scope, and scalability, thereby allowing businesses to adapt and change quickly, allowing for growth, changes, and other business realities.

– Time, money, and hassle saved from having on-demand expertise available.

What Does This Mean For Your Business?

Outsourcing to MSPs allows businesses not just to save money and become more efficient, but it also provides the kind of security, scope, flexibility, and future-proofing that enable businesses to be competitive and make the most of opportunities in the changing business environment. The services of MSPs can be particularly beneficial to smaller businesses because having the expertise-on demand (i.e. not having to try and do everything in house) means cost savings and the kind of up-to-date systems that can enable them to behave like a much bigger company, thereby providing greater value to more customers while being much more flexible and competitive.

News

Tech Tip – Setting Up An ‘Out Of Office’ Autoreply In Gmail

Many people may be familiar with how to set up an ‘out of office’ email in Outlook, but it can also be done in Gmail too. Here’s how:

– Log in to Gmail and select the ‘gear’ (settings) symbol (top right).

– Select ‘See all settings’.

– Scroll down to ‘Vacation responder’ and change the setting to ‘on’.

– Select the date of the first day you’ll be away. Although it is not necessary to enable and select a last day, it may be a good idea just in case you forget to switch the autoreply off.

– Type your subject line and autoreply message.

– If you only want to target the autoreply to people you already know, select ‘Only send a response to people in my Contacts’.

– Select Save Changes.

– To turn the autoreply off again, follow the route through Gmail Settings to the ‘Vacation responder’ section and switch to ‘off’.

News

Tech Insight : ISDN To be Switched Of

With BT Openreach officially setting the timeframe for switching off PSTN/ISDN, we look at what this means for businesses.

ISDN an PSTN

Integrated Services Digital Network (ISDN), which really came into being in the 1990s, is a set of communication standards that are used for simultaneous digital transmission of voice, video, data, and other network services over the digitised circuits of the Public Switched Telephone Network (PSTN). The PSTN is a broad term for the world’s collection of interconnected, circuit-switched, voice-oriented, public telephone networks that (whether operated by national, regional, or local telephony operators) make up the infrastructure and services for public telecommunication.

Originally, ISDN offered the chance for digital services to operate through the same copper wire as the normal telephone system.  It became popular with businesses because it offered a faster Internet connection than dial-up. Fast-forwarding through different attempts to upgrade includes B-ISDN, transmitting data over fibre optic cable, and ISDN BRI (improving voice services), and the building of modern internet protocol (IP) based networks which can support both broadband and landline telephone services, and ISDN now seems to be only of real use for internet access in areas which haven’t yet been reached by broadband.

Also, as noted by Ofcom, the old PSTN is reaching the end of its life and is becoming increasingly difficult and costly to maintain, which is another reason why a switch-over to a better alternative is necessary.

What’s Happening With the Switch-Off?

BT Openreach have announced that starting from the end of this year and finishing in 2025, it will be “switching off the UK telephone network as we know it” by moving 15 million lines to a VoIP (Voice over Internet Protocol) based replacement telephone service. In essence, this means that the Internet (broadband) will be used to carry telephone calls rather than traditional copper wires.  Since ISDN used the copper wire phone network, this change marks the ISDN switch-off.

The Alternatives

With the now inevitable switch-off of ISDN, the main alternatives for businesses are:

– SIP, which uses virtual, cloud-based phone lines rather than physical lines. This may be more suitable for businesses with an on-premise phone system. Many existing phone systems are already compatible with SIP.

– Hosted VoIP/ a Hosted IP phone system may suit businesses that don’t want to commit or retain an on-premise phone system.  As this option uses the business’s internet lines, it essentially means that the business rents a phone system.

What Are The Advantages?

Broadly speaking, the switch to VoIP should bring many advantages, such as:

– A greater breadth of capabilities.

– Cost savings and fewer system failures and outages.

– Scalability and portability (VoIP phone systems can go wherever the company goes).

– Greater communications mobility, flexibility, and increased productivity and collaboration. The importance of this has been particularly well-illustrated with the need to use remote, cloud-based communications and collaborative working platforms during the pandemic.

– Better security that’s continuously updated.

– Greater reliability.

– Improved customer experiences.

– Clearer calls, making it easier to keep existing numbers, and the choice to have broadband provided separately from the telephone service.

– Better identification and prevention of nuisance calls, thereby saving businesses time and money and potentially protecting against scammers.

What Are The Disadvantages?

Some disadvantages of switching to VoIP could be:

– Potential problems with latency.

– Vulnerability to phone systems going down if there’s a broadband outage or if the electricity supply is interrupted.

Possible Impact Downstream

Both Ofcom and Openreach have acknowledged that the area of concern, if preparations are not made sufficiently in advance of the switch-over, is downstream services such as security and fire alarms, telecare devices, retail payment terminals, and equipment for monitoring and controlling networks.  These rely on some attributes of the PSTN that may not be fully replicated in VoIP-based platforms, hence the importance of adequate preparation.  This will require service providers to test their equipment to see if it will continue to function over IP and then replace, upgrade, or reconfigure it as appropriate. These service provider businesses will also need to ensure that customers (from residential users to large commercial and public sector entities) are made aware of the issue well in advance so that necessary steps can be taken to maintain service(s).

Ofcom has stated that the government will work with the sectors that use these downstream services (e.g. health, energy, transport, and business) so that they are aware of the change and can prepare in time.

What Does This Mean For Your Business?

Although the move is industry-led, there is little doubt that analogue and old, expensive to maintain copper wire phone systems will not be able to provide the scope, flexibility, speed, capacity, and economies of the digital alternative as businesses now rely heavily on the Internet. The switch-over will be spread over four years. Provided that there is adequate information and support given by the regulator and BT Openreach, and coordination among communications service providers (CSPs), and adequate advice and help for downstream providers, then change should be manageable, and disruption should be minimised.

Particular attention clearly needs to be paid to those sectors and organisations (many of which are vital to UK business and infrastructure) that still rely on some attributes of the PSTN that may not yet look as though they can be fully replicated in VoIP-based platforms. With this already being acknowledged and working groups already planned to tackle the issue, a smooth transition looks more likely.

The pandemic has increased the digital transformation of many businesses and the advantages of the switch to VoIP and digital appear to be in-keeping with this, and look likely to benefit businesses going forward. 

More information about the switch and what to do about the migration can be found here: https://www.bttcomms.com/phasing-out-and-switch-off-of-isdn/.  Also, Ofcom provides some useful information about its plans for the switch-over here: https://www.ofcom.org.uk/__data/assets/pdf_file/0032/137966/future-fixed-telephone-services.pdf.

News

Featured Article – How To Browse Privately

This article takes a brief look at what private browsing actually means with popular browsers and software, and how genuinely private browsing could be achieved.

Why Browse Privately?

Over 80 percent of websites use one or more tracking tools (Epic) and reasons for private browsing may be to avoid having your browsing history recorded, perhaps being on a shared or public computer (to avoid being tracked by your browser), or to avoid downloading cookies (to avoid being tracked by websites), or to be able to sign into multiple accounts simultaneously.

Tracking

The different ways that you can be tracked include:

– IP address. This string of numbers, set by the ISP, is a way for each computer using the Internet Protocol to communicate over a network. The IP address is necessary for accessing the Internet so that web servers know where to send the information that’s being requested.

– Cookies. These are text files loaded into a folder on the user’s web browser by the sites they visit. Cookies record details such as users’ preferences, and the last time they visited the website. Session cookies are used when a person is actively navigating a website but tracking cookies can be used to create long-term records of multiple visits to the same site. From the user point of view, cookies can serve a useful purpose (e.g. for logins) or can be used for targeted advertising.  Google recently announced an end to its third-party (tracking) cookies within 2 years for its Chrome browser following similar, earlier announcements by Safari (Apple), Mozilla’s Firefox (Mozilla) and Brave.

– Signed-in accounts. The accounts a user is signed-in to (e.g. Google or Facebook) can also track what a user has viewed, liked and more.

– Agent strings. When a user sends a request to a webserver to view a website, the request comes with information about the user attached to the User-Agent HTTP header.  This ‘agent string’ contains information such as the browser (type and version) and operating system being used.

Browsers – Private Browsing / Incognito Mode

Different browsers have different names for private browsing mode, e.g. InPrivate browsing (Edge), ‘Private’ for Firefox (Mozilla) and Safari, and Incognito for Google Chrome. 

Switching to this browser mode loads a news private window. This means that the new window is not signed to any accounts so can’t be tracked by them, cookies are not used, and any browsing is not added to the browser history. In this mode, however, the user’s IP address can still be tracked.

Do Not Track

‘Do Not Track’ (DNT) is a web browser setting that requests/asks that a web application to disable its tracking of an individual user. For example, switching the ‘do no’ track’ setting sends a signal to websites, analytics companies, ad networks, plug-in providers, and other services a user encounters while browsing.  However, due to a lack of consensus (or enforcement) most sites still track users despite the request not to.

Extensions For Browsers

Another option for users to try and maintain private browsing is to use an additional private browsing extension/add-on.  Examples include:

– Privacy Badger. This is a free extension that gradually learns to block invisible trackers.

– Ghostery. This is a free, open-source privacy and security-related browser extension and mobile browser app that blocks ads and stops trackers.

– Cookie AutoDelete.  This is an extension for erasing cookies for a browser tab when it closes.

– HTTPS Everywhere.  This free, open-source browser extension automatically switches thousands of sites from “http” to secure “https” thereby protecting the user from many different types of tracking/surveillance and account hijacking.

Whole Private Browsers/Search Engines

Users can opt for a whole browser that’s designed to be private, anonymous and to guard against tracking. Popular examples include:

– DuckDuckGo. This search engine, which is also available as a Chrome extension, doesn’t save the user’s browser history, forces sites to use encrypted connections, blocks cookies and trackers, and stops a user’s searches being sold to third parties for profiling and advertising.

– Epic Privacy Browser.  This is a secure web browser that blocks ads, trackers, fingerprinting, crypto mining, ultrasound, signalling, and offers free VPN (servers in 8 countries).

– Tor.  This browser uses a distributed network (randomly selected nodes) to anonymise the user’s IP address. Tor also encrypts traffic.  This makes it incredibly difficult for a user’s web traffic to be traced and very difficult for users to be tracked unless they reveal their IP address by enabling some browser plugins, downloading torrents, or opening documents downloaded using Tor.

– Brave. This is a free, open-source web browser, based on Chromium that blocks ads and trackers and allows users to use a Tor in a tab to hide history, and mask location from the sites a user visits by routing a user’s browsing through several servers before it reaches its destination.

VPNs

Many users now opt for a virtual private network (VPN) to allow them to make a secure connection to another network over the Internet, encrypt traffic, and hide their IP address. Since a VPN routes a user’s internet through another computer, where many other users of the VPN are using the same IP address, tracking is made very difficult. VPNs, however, don’t protect a user from being tracked, from cookies, from user-agent strings, or through the accounts they’re logged in to (e.g. Google), or from any VPN’s that keep logs of user activity and could sell those logs to third parties. Also, some services discourage the use of a certain VPN, and VPNs can slow down the user’s Internet connection dues to the re-routing and encrypting through the VPN server.

What Does This Mean For Your Business?

What this all means depends upon what level of privacy, for what purpose, and when users require it.  For most daily use, Private/Incognito browsing functions provide a fast way to access a reasonable amount of protection from normal tracking. Additional extensions /add-ons may add a convenient route to greater privacy. For times when users may feel that more security is needed, they may decide to opt for a VPN or for a more complete private browsing solution such as the Tor browser. It may also be the case that some business users, as a matter of preference and security, may choose to only use the private services (e.g. DuckDuckGo, Brave, or Tor), thereby always working with a privacy level that they feel comfortable with.  For many businesses, it’s more likely to be a case of a combination of privacy solutions used as and when required in a way that is compatible with daily working practices, authorised, approved, and recommended by the company and other relevant stakeholders. With popular browsers now stopping tracking cookies and news that the next Apple iPhone software update, iOS 14.5 will include an AppTrackingTransparency requirement where whereby all apps will need to request permission to track a user’s activities across other companies’ apps, pressure is now mounting on advertisers to come up with other ways to track and target users and maintain revenue streams.

News

Tech News : EU To Ban “Unacceptable” Use of AI

Following last week’s leak of proposed new rules about the use of AI systems, The European Commission looks likely to ban some “unacceptable” usage of AI in Europe.

The Leak and the Letter

This latest announcement that the European Commission aims to ban “AI systems considered a clear threat to the safety, livelihoods and rights of people” (and thereby “unacceptable”) follows the ‘leak’ last week of the proposed new rules to govern the use of AI (particularly for biometric surveillance) and a letter for 40 MEPs calling for a ban on the use of facial recognition and other types of biometric surveillance in public places.

Latest

This latest round of announcements about the proposed new AI rules by the EC highlights how the rules will follow a risk-based approach, will apply across all EU Member States, and are based on a future-proof definition of AI.

Risk-Based

The European Commission’s new rules will class “unacceptable” risk as “AI systems considered a clear threat to the safety, livelihoods and rights of people”. Examples of unacceptable risks include “AI systems or applications that manipulate human behaviour to circumvent users’ free will (e.g. toys using voice assistance encouraging dangerous behaviour of minors) and systems that allow ‘social scoring’ by governments.”

High Risk – Remote Biometric Identification Systems

According to the new proposed rules, high-risk AI systems include law enforcement, critical infrastructures and migration, asylum, and border control management.  The EC says that these (and other high-risk AI systems) will be subject to strict obligations, especially “all remote biometric identification systems” which will only have “narrow exceptions” including searching for a missing child, preventing an imminent terrorist threat, or finding and identifying a perpetrator or suspect of a serious criminal offence.

Other Risk Categories

The other risk categories for citizens covered in the proposed new EC AI rules include limited risk (chatbots), and minimal risk (AI-enabled video games or spam filters).

Governance

Supervision of the new rules looks likely to be the responsibility of whichever market surveillance authority each nation sees as competent enough, and a European Artificial Intelligence Board will be set up to facilitate their implementation and drive the development of standards for AI.

It is understood that the rules will apply both inside and outside the EU if an AI system is available in the EU or if its use affects people who are located in the EU.

What Does This Mean For Your Business?

AI is now being incorporated in so many systems and services across Europe that there is clearly a need for rules and legislation to keep up with technology rollout to protect citizens from its risks and threats. Mass, public biometric surveillance such as facial recognition systems is an obvious area of concern, as highlighted by its monitoring by privacy groups (e.g. Big Brother Watch) and by the recent letter calling for a ban by 40 MEPs. These proposed new rules, however, are designed to cover the many different uses of AI including low and minimal risk uses with the stated intention of making Europe a “global hub for trustworthy Artificial Intelligence (AI)”. If the rules can be enforced successfully, this will not only provide some protection for citizens but will also help businesses and their customers by providing guidance to ensure that any AI-based systems are used in a responsible and compliant way.

News

Tech News : MI5 ‘Think before You Link’ Campaign Warning To Staff

MI5 is using a ‘Think before You Link’ campaign to warn its workers about the growing threat of being targeted for information by actors for hostile states using fake profiles on platforms such as LinkedIn.

Think before You Link

It has been reported that MI5 believes that more than 10,000 British nationals have been targeted online in the past five years by hostile states.  With this in mind, the UK’s Centre for the Protection of National Infrastructure (CPNI), an offshoot of MI5, has launched a ‘Think before You Link’ campaign. The idea of the campaign is to provide practical advice on how to identify, respond to, and minimise the risk of being targeted by criminals and hostile actors who may act anonymously or dishonestly online in an attempt to connect with people who have access to valuable and sensitive information.  

LinkedIn?

Although LinkedIn has not been explicitly named as a platform that is being used/could be used, LinkedIn has said in a statement published on its news page that “We welcome the online safety efforts of the Centre for the Protection of National Infrastructure and its work to expand their Think Before You Link campaign in the United Kingdom”. The statement goes on to say that “We actively seek out signs of state-sponsored activity on the platform and quickly take action against bad actors in order to protect our members” highlighting how it has a “Threat Intelligence team” to remove fake accounts.

Who?

The campaign is aimed at those who “Identify as an employee or member of HMG or Civil Service” or “Identify as working in the private sector or academia with access to classified or commercially sensitive technology or research”.  These could include (among others) retired civil servants with access to technology relating to defence/defence equipment.

What?

CPNI (MI5) suggests that once links are made online with fake profiles (e.g. with LinkedIn), social manipulation could occur as business proposals/propositions could be made that require information to be given that could be of use to criminal actors/hostile states. For example, this could take the form of an invitation (paid) to speak at a conference/event as an expert, which could involve linking online with relevant people, submitting a CV and background information. This could also lead to bribery or blackmail.

Damage

According to CPNI, the risk of engaging with such profiles is ‘damage’ to individual careers, damage to the interests of the person’s organisation, and damage to the interests of UK national security and prosperity. This appears to be a way of warning those with national security-related work roles not to unwittingly put themselves in a position where they may give away secrets of valuable (to other states) information online.

Campaign Materials

The ‘Think before You Link’ campaign is using guidance for staff and organisations, flyers, poster sets, and videos to explain and illustrate the risks and what to do to minimise them.

What Does This Mean For Your Business?

With current difficult relations between the UK, the U.S. (and all the Five Eyes) and what are now seen as hostile or potentially hostile states (e.g. Russia and China), trade wars (US and China), cyberattacks on state agencies and big businesses as well as to get vaccine secrets, online interference in elections, and chemical weapon usage (poisonings) have all contributed to the apparent need to warn of approaches by hostile actors via social media. Remote working and physical separation during the pandemic have also made the need for this warning more urgent as the numbers of targeted social manipulation attempts have grown over the last year. Businesses with access to classified or commercially sensitive technology or research, or who have working relationships with academia, or with experts in certain fields (e.g. defence), may need to be particularly cautious when it comes to approaches by new or little-known friends and connections on social media.

News

Tech Tip – Receive Only Your Important Notifications in Outlook

If you would like to save time by configuring Outlook to only send you alerts when important emails arrive, here’s how:

This involves setting up custom alert rules for specific people whose emails are particularly important to you e.g., the boss and other colleagues. To set up a custom alerting rule for a specific person:

– Open Outlook, find an email from someone for whom you want an alert.

– Right-click the email (or go to the Home tab of the ribbon at the top).

– Select Rules > Create Rule.

– Switch on the checkbox by the sender’s name.

– Choose “Display In The New Item Alert Window” and/or “Play A Selected Sound”.

– Choose the sound file to play for the alert. You can use the play button in the “Create Rule” window to hear the sound before making your choice.

– Click ‘OK’ to set the rule.

– Repeat the process for the other contacts you would like to receive alerts for.

To set up a custom rule for a whole domain:

– In the Home tab, click on Rules > Manage Rules & Alerts.

– Click “New Rule.”

– Select “Apply Rule On Messages I Receive” and click the “Next” button.

– Scroll down and select “With Specific Words In The Sender’s Address”.

– Click the underlined “Specific Words” (bottom panel).

– Add the domain you need to receive alerts for (@therequireddomain.co.uk) and click OK. The domain will replace “Specific Words”. Then click “Next”.

– Choose whether you require a sound played, an alert displayed, or both, and then click “Finish.”

– In “Rules and Alerts”, click “Apply” to turn on the rule.

News

Tech Insight : What Is An API?

In this article, we take a brief look at what APIs are, why they are important, and how they are they are used.

What Is An API?

An Application Programming Interface (API) is intermediary software that allows different applications to talk to each other. In essence, it delivers your request to a provider and then delivers the provider’s response back to you. APIs provide operations and queries that developers can use to design and build apps and web applications, for example, using APIs to connect the user-facing front ends with the back-end functionality and data.

Examples of API Use

APIs are widely used, and some popular examples of their use include:

Real-time travel bookings in websites. These websites use third-party APIs to collect and display real-time aggregated flight and hotel availability from providers and use APIs to confirm the bookings with the providers. In other words, the APIs are the intermediaries that enable the website to communicate with the hotel and flight booking systems.  An example of a real-time flight data display API is the ‘Aviationstack’ API which provides flight stats for 200+ countries and more than 13,000 airlines.

Paying with PayPal

The option to pay with and to deposit and withdraw funds from PayPal in e-commerce (e.g shopping, better, booking) websites uses an API. This allows the end application to work without getting access to sensitive data or other unintended permissions.

Logins With Different Options

Websites that enable you login using different platforms (e.g. displaying login with Facebook, Twitter, or LinkedIn) use an API to authenticate the logins rather than having the security risk of actually logging in the social media account.

Types of APIs

There is a number of different types of APIs which include:

– Open APIs/Public APIs. Anyone can use these as they are publicly available/there are no restrictions.

– Partner APIs. These are not publicly available and are only exposed to strategic business partners through the granting/purchasing of rights or licenses.

– Internal APIs/Private APIs. These are used on a company’s internal systems, e.g. to improve products and services.

– Composite APIs. These enable batch requests, i.e. a client can make one API request with a batch/chain of calls and receive one response.

– Web APIs. As the name suggests, these are specifically for the web, e.g. using a web API to extend the functionality of a web browser or a server API to extend web server functionality.

Endpoints and Request Methods

One of the key ways in which an app interacts with an API is the ‘endpoint’.  This could be the specific web address that links to the functions required.

The ‘request methods’ refers to what action will be taken by referring to the API.  For example, these could be ‘GET’ to request data from a server, ‘POST’ to add new data to a server, ‘PUT’ to change existing information, or ‘DELETE’ to delete existing information.

To use an API generally requires getting an API Key, testing the API endpoints, and creating an App.

The Benefits of APIs

The many benefits of using APIs include:

– Time and money savings in development due to being able to take advantage of the functionality of different applications without having to type code yourself or pay for complicated development work to enable different programmes to communicate with each other.

– Security while tapping into data and external functionality.

– Efficiency as content generated through an API can be published automatically and made available for every channel.

– Improved services and user experience, e.g. on a website, due the ability to automatically display real-time, accurate information (such as flights and bookings).

– Convenience for users of websites with APIs links.

– Better integration leading to better results (whilst reducing development costs).

– Faster innovation by recharging applications with the latest technology, and easier monetisation.

What Does This Mean For Your Business?

APIs tie disparate applications together, allowing them to complement and talk to each other, become greater than the sum of their parts, and in doing so they represent ways for businesses to gain efficiencies, improve and enrich services and gain competitive advantages, automate, and innovate.  Companies can develop APIs and apps or use existing APIs to integrate and add value and as such APIs offer many new advantages and opportunities.